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(57) Abstract 

A method and system for the remote control of devices having a secure self learn capability. The system includes an encoder (10) 
and a decoder (12), the encoder encoding variable informadon includmg a user key using a non-linear algorithm to produce an encoded 
value transmitted to the decoder, the decoder decoding the value using the same algoritlim. In a learning mode a new encoder is to be 
added to the system. The new encoder produces an encoded value using a key generation seed. The decoder, upon receiving the encoded 
key generation seed, produces a decoding key based upon the decoded key generation seed. The decoding key is stored in the decoder 
memory allowing valid recognition of the new encoder in a secure manner. 
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IMPROVED SECURE SELF LEARNING SYSTEM 

10 The present application is a Continuation-in-part of application Serial No. 08/313,613, 

filed on September 30, 1994, the disclosure of which is hereby incorporated by reference, which 
is a Continuation-in-part of application Serial No. 07/985,929, filed on December 4, 1992, the 
disclosure of which is incorporated herein by reference, which is a Continuation-in-pail of 
application Serial No. 07/707,101, filed on May 29, 1 99U now abandoned. 

15 

1 . Field of the Invention 

The present invention relates to an improved secure self learning system and method 

and, in particular, to an improved secure self learning system and method for remotely 

controlling systems and devices in security systems. 
20 2. Discussion of the Background 

The remote control of systems or devices via ultrasonic, radio frequency or infra red 

ti-ansducers is popular for many applications, including security systems for buildings and 

vehicles, and remote controlled garage door and gate openers. Certain unidirectional 

transmission systems currently in use have two very important security shortcomings: (a) the 
25 codes tliey transmit are usually fixed; and (b) the number of possible code combinations is 

relatively small. Either of these shoilcomings can lead to unauthorized access. 
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The limited number of possible combinations available in most remote control systems 
makes it possible to transmit all possible combinations in a relatively short time. A hand held 
microprocessor-based system for this purpose (called a code scanner) can easily be constructed. 

In systems using eight DIP switches (256 combinations), this scanning process can 
typically be accomplished in less than 32 seconds, when trying eight combinations per second. 
Even in systems using 16 bit keys, yielding 65,536 combinations, only 2 1/4 hours would be 
required to try all possible combinations. It should also be noted tliat the scanner may gain 
access in far less time than this maximum time and the average time would, in fact, be hall^of 
the total time. 

An easier way of gaining unauthorized access to a security system is freely available. A 
unit of this type is advertised as a tool for tlie "legal repossession of vehicles." A remote control 
transmitter of the type normally used in vehicle security and remote control systems includes a 
small radio transmitter tl^at transmits a code number on a specific frequency. This code number 
is normally generated by an integrated circuit encoder, 'fhis transmission frequency is usually 
fixed by legislation within a particulai- country. Thus, it is possible to build a receiver that can 
receive signals from all such transmitters and to use this together with a circuit v/hich records 
the transmissions captured by the receiver. Such a device is known as a code or key grabber 
and can be used to gain access to protected premises or to vehicles with remote control security 
systems. 

Code hopping and rolling code systems are currently available to overcome the 
limitations of fixed code systems (refer to ZA Patent No. 91/4063 and U.S. Patent No. 
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5,103,221). The specifications of these patents describe transmitters which use algorithms to 
generate a different transmission each time the transmitter is activated. When a code is received 
and decoded, a decoder responds only if a valid transmission was made, hi some cases (refer to 
ZA Patent No. 91/4063) a special algorithm is used with a stored key to decode an encoded 
reception. The decoded value is then compared to a stored value to determine if the 
transmission is legitimate or not. 

A disadvantage of code hopping and rolling code systems is the l^ct that it is di fficult to 
replace or disable lost, stolen or unserviceable transmitters. External equipment must be used 
by a manufacturer or dealer to reprogram and replace a transmitter. An additional security 
problem may be created during this process. 

Ideally, a security system should not require dealer intervention when a user needs to 
add a new transmitter to the system or replace a transmitter. The user should l^e able lo buy a 
generic replacement transmitter off the shelf and add this transmitter unassisted when 
convenient. Learning systems provide this capability, in that the decoder can "learn" the new 
transmitter's identity without having to be reprogrammed from outside using special equipment. 

A learning system should however not only enable a user to add a new transmitter to the 
system, but should also have a means of excluding a previous transmitter from the system, due 
to the possibility of such a transmitter falling into the wrong hands. 

In self learning fixed code systems, the incoming code is stored lor Future references by 
the decoder when it is in a learning mode. Subsequent transmissions are compared with the 
learned code. Different airangements to learn new transmitter codes are used. A switch can be 
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used to set the decoder eitlier in a nomial operation mode or in a learning mode (U.S. Patent 
Nos. 4,750,1 18 and 4,912,463). In the learning mode, the decoder can learn new valid codes 
from a transmitter. Similar means are used (refer to U.S. Patent Nos, 4,93 K789 and 5,049,867) 
to program the decoders to react to a new transmitter code. In another patent (refer to U.S. 
Patent No. 5,148,159), a randomly selected fixed code is generated by the decoder and 
programmed into the associated transmitter. U.S. Patent No, 4,855 J13 describes the use of a 
hand held programmer to program the new fixed code to be recognized by the decoder. In all of 
these patents, the transmitted or programmed codes are fixed stored codes. Security threats by 
means of code grabbing or code generation still exist irrespective of the learning mechanisms 
employed. In addition, for these systems to learn, the user has to either (1) use a cumbersome, 
more expensive, two switch system; and/or (2) the user has to set the receiver/decoder in 
learning mode via (a) a switch inconveniently physically located on the receiver/decoder which 
can be very difficuh (if not impossible for elderly or handicapped persons) lo activate once the 
system, e.g., a receiver of a garage door opening system, is installed, e.g. on the ceiling of a 
user's garage (See Figure 1 of U.S. Patent No. 4,750,1 1 8), (b) a code sent by the transmitter - 
activation and use of such can be complicated and not secure if the transmitter is lost or worse 
stolen, or (c) a code sent by a separate programming means which can be complicated to use 
and likewise not secure if the programming means is lost or worse stolen. 

Reference should also be made to the specifications of the following U.S. Patent Nos.: 
RE 29,525; 4,380,762; 4,385,296; 4,426,637; 4,529,980; 4,534,333; 4,574,247; 4,590,470: 
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4,596,985; 4,638,433; 4,652,860; 4,686,529; 4,737,770; 4.779,090, 4,835,407; 4.847,614; 
4.855,713; 4,878,052; 4,890,108; 4,928,098; 4,951,029; 4,988,992; 5,049,856; and 5,055,701 . 

In contrast to the above-described fixed-code systems, tlie invention of the present 
application provides a secure sell-leaining code hopping or roiling code system whereby 
security tlireats by code grabbing or code generation devices are removed. 

According to one preferred embodiment, the invention of the present application 
provides an improved rolling code or code hopping system comprising an encoder and a 
decoder, wherein the improvement comprises: a decoder learning mode activation means 
whereby upon activation of said means the decoder is set in learning mode, said means being 
physically remote or detached from the encoder, and the decoder, and preferably from any other 
programming means. 

According to a further embodiment, the invention of the piescnl application provides an 
improved code hopping or rolling code system comprising a transmitter and a receiver, wherein 
said improvement comprises: a receiver learning mode switch whereby upon activation of said 
switch the receiver is set in the learning mode, said switch being physically detached or remote 
from the receiver, the transmitter, and preferably any other programming means. 



The invention provides, in the first instance, a method of operating an encoder which 

includes the steps of: 

storing a serial number; 
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storing at least one of the following: 
a seed; and 

a key whicli is generated using a manufacturer's 
master key and at least one of the following: 

the seed; and 

the serial number; and 
transferring key generation information selected at least from: 

the seed; 

the serial number; and 
information derived from applying tlie 
key and an algorithm to an input value. 
The input value may include information selected at least from: 
a management code; 
a counter value; and 
infomiation relating to a command, 
hi one embodiment the method includes the steps of: 

storing a plurality of parameter sets, each parameter set including 
information selected at least from: 
a respective serial number; 
a respective seed; 
a respective key; and 
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respective infomiation derived from applying the said respective key and 
the algoritl™ to a respective input value; 
selecting a pai*ameter set; and 

transferring the respective key generation information for the selected 
parameter set 

Each input value may include information selected at least from: 

a respective management code; 

a respective counter value; and 

information relating to a command. 
The invention also extends to a metliod of operating a decoder which includes the steps 

storing a manufacturer's master key; 

setting the decoder in learning mode by activating a decoder learnmg 
mode activation means physically remote or detached from the decoder; 

receiving a signal which contains key generation information selected at 
least from: 

a seed; 

a serial number; and 

encoded information derived from applying a first key and an algorithm 
to an input value; and 



wo 98/55717 PCT/US98/11365 

8 

generating a second key using at least the Icey generation information 
and tlie manufacturer's master key. 

The method may include the steps of storing at least one of: 
the second key; 

the key generation information; and 
the serial number. 

In one . embodiment the received signal includes the encoded information and the 

method iiickides the steps of: 

decoding tlie encoded information using a decoding algoritlim and a 
previously generated second key to obtain a decoded input value which includes 
information selected at least from: 

a management code; 

a counter value; and 

information relating to a command; and storing the decoded input value. 
The method may include the steps of: 

storing a plurality of parameter sets, each parameter set including 
information selected at least from: 

a respective serial number; 

a respective management code; and 

a respective counter value. 
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The invention further extends to a method of operating an access control system which 
includes an encoder and a decoder, the mediod including the steps of: 
storhig a serial number; 
storing at least one of the following: 
a seed; and 

a first key which is generated using a manufacturer's master key and at 
least one of the following: 
the seed; and 
the serial number; and 

using the encoder to transfer a signal which includes key generation 
information selected at least from: 
the seed; 

the serial number; and 

information derived from applying the first key and an algorithm to an 
input value; and 

storing a manufacturei-'s master key in the decoder; 

activating a decoder learning mode activation means for setting the 
decoder m learning mode, said means being remote irom the encoder and the 
decoder; 

receiving tlie transfeired signal by the decoder; and 



wo 98/55717 PCT/US98/11365 

10 

generating a second key by the decoder using at least the key generation 
information and the manufacturer's master key. 

The second key or the key generation infomiation may be stored. In the fonner case, the 
method mcludes the steps of: 

activating the encoder with a command; 

encoding at least an input vakie using the first key and an algoritlmi to 
form an encoded part, the input value including information selected at least 
from: 

a counter value; 

a management code; and 

information relating to the command; 

using the encoder to transfer a signal which is formed from al least the 
serial number and the encoded part; and, at the decoder, 
receiving the transferred signal; and 

using tlie second key and a decoding algorithm to decode the said 
encoded pail in the transferred signal to obtain the said input value. 
In tlie latter case the method includes the steps of: 

activating the encoder with a command; 

encoding at least an input value using tlie first key and an algoritlmi to 
form an encoded part, the input value including formation selected at least from: 
a counter value; 
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a management code; and 
information relating to the command; 

using the encoder to transfer a signal which is formed from at least the 
serial number and the encoded part; and, at the decoder, 
receiving the transferred signal; and 

using the key generation information and a decoding algoritlim to decode 
the said encoded part in the transferred signal to obtain the said input value. 
The method may further include the steps of: 

at the encoder, storing a plurality of pai'ameter sets, each parameter set 
including information selected at least from: 

a respective serial number; 

a respective seed; and 

respective information derived from applying the said respeclive key and 
tlie algorithm to a respective input value; 
selecting a parameter set; 
activating the encoder using a command; 

transferring a signal which contains the key generation information 
associated with a selected parameter set; and, at the decoder, 

storing a plurality of parameter sets, each parameter set including 
information selected at least from: 

a respective serial number; 
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a respective management code; and 

a respective counter value; 

receiving the said tiansferred signal, and 

generating a respective second key, associated with a selected parameter 
set, using the manufacturer's master key and the key generation information 
contained in the said ti-ansferred signal. 

Preferably the encoder and the decoder are each formed in a respective microchip. 
The invention also provides an encoder which includes: 

means for storing a serial number; 

means for storing at least one of the following: 
seed; and 

a key which is generated using a manufacturer's master key and at least 
one of the following: 
the seed; 

the serial number; and 

means for transfeiring key generation information selected at least from: 
the seed; 

the serial number; and 

information derived from applying the key and an algorithm to an input 

value. 
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The encoder may include means for storing a plurality of parameter sets, each parameter 
set including infonnation selected at least from: 
a respective serial number; 
a respective seed; 
a respective key; and 

respective information derived from applying the said respective key and 
the algoritlim to a respective input value; 

and means for selecting a parameter set; 

tlie said transferring means being adapted to transfer the respective key 
generation information for the selected parameter set. 
The invention also extends to a decoder which includes: 

means for storing a manufacturer's master key; 

means for receiving a signal which contains key generation information 
selected at least from: 
a seed; 

a serial number; and 

encoded infomiation derived from applying a first key and an algorithm 

to an input value; and 

means for generating a second key using at least the key generation 
infoniiation and the manufacturer's master key. 
Means may be provided for storing at least one of: 
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the second key; 

the key generation information; and 
tlie serial number. 

The invention further provides an access control system which includes an encoder a 
learning mode activation means, and a decoder, the encoder including: 
means for storing a serial number; 
means for storing at least one of the following: 
a seed; and 

a first key which is generated using a manufacturer's master key and at 
least one of the following: 
the seed; and 
the serial number; and 

means for transferring a signal which includes key generation informa- 
tion selected at least from: 
tlae seed; 

the serial number; and 

information derived from applying the first key and an algorithm to an 
input value; 

a decoder learning mode activation means physically remote from the 
encoder and the decoder for setting the decoder in learning mode; and 
the decoder including: 
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5 means for storing a manufacturer's master key; 

means for receiving the transferred signal; and 

means for generating a second key using at least the key generation 
information and the manufacturer's master key. 

The system may include means for storing the second key or the key generation 

10 information. 

In tlie former case the system may include: 

means for activating the encoder with a command; means for encoding at 
least an input value using the first key and an algorithm to fomi an encoded part, the input value 
including information selected at least from: 
) 5 a counter value; 

a management code; and 
information relating to the command; 

means for forming a signal, for transfer by the encoder, from at least the 
serial number and the encoded pait; 
20 the decoder including means for using the second key and a decoding 

algorithm to decode the said encoded part in the transferred signal, received by 
the said signal receiving means, to obtain the said input value. 
In the latter case the system may include: 

means for activating tlie encoder with a command; 
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means for- encoding at least an input value using the first key and an 
algorithm to form an encoded part, the input value including information 
selected at least from: 

a counter value; 

a management code; and 

information relating to tlie command; 

•means for forming a signal, for transfer by the encoder, from at least the 
serial number and the encoded part; 

the decoder including means for using the key generation information 
and a decoding algorithm to decode the said encoded part in the transilsrred 
signal, received by the said signal receiving means, to obtain the said input 
value. 

The system may include means for storing a plurality of parameter sets at the encoder, 
each parameter set including information selected at least from: 
a respective serial number; 
a respective seed; and 

respective information derived from applying the said respective key and 
tlie algorithm to a respective input value; 

means for selecting a parameter set; 

means for activating the encoder using a command; 



wo 98/55717 PCT/US98/11365 

17 

5 the signal traiisfemng means then transferring a signal which contains 

the key generation information associated with a selected parameter set; 

means for storing a plurality of parameter sets at the decoder, each 
parameter set including information selected at least from: 
a respective serial number; 
1 0 a respective management code; and 

a respective counter value; and 

means for generating a respective second key, received by the said signal 
receiving means, associates with a selected parameter set, using the 
manufacturer's master key and the key generation information contained in the 
15 said transferred signal. 

Preferably the encoder and the decoder are each formed in a respective microchip. 
It is an object of the present invention to provide an access control system wherein a 
transmitter or token, such as a so-called "smart card," may be replaced or added to the system 
by a user witliout external equipment and without transferring an encoding key in clear format, 

20 i.e., in unencoded form. 

The access control system may allow for the disabling, in a decoder, of stolen 
transmitter codes to prevent unauthorized access to the system. 

Another object of the invention is to provide an access control system which acts against 
the use of code grabbing or scanning methods. 
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The invention is further concerned with an encoder and a decoder for use in an access 
control system, and witli their method of operation. 

During the manufacturing process, encoders are programmed with different serial 
numbers associated with a range of decoders. A unique manufacturer's master key is used 
together with an algoritiim and the serial number, to generate and store a user key in a non- 
volatile memory of the encoder, logclher with counter, management code and otiier information. 
Several sets of these parameters can be stored to handle several transmissions (transmit different 
commands by activating different inputs). The manufacturer's master key is also stored in ail 
the manufacturer's decoders. User data and control data is also programmed to control the 
different functions that need to be activated by the encoder. The same algorithm used to 
generate the user key in the encoder must also be present in the decoder. 

In normal operation of an encoder, the key information associated with a parameter set 
is used to encode the variable counter information, together with the encoder management code, 
serial number and other information by making ase ol'a special algorithm. The information that 
is encoded will be different eacii time the encode)- is activated. This technique is referred lo as 
code hopping. Altiiough it is known that the counter infomiation changes, the transmission is 
not predictable because of Uie secret key and algorithm that encode the infonnation. In an 
access control system, a fixed part denoting the serial number may be generated with the code 
hopping part and togetlier form a transmission value tliat is transmitted by a data transfer 
interface. 
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In one embodiment of the invention, an encoder teaming capability is implemented. 
This allows a user to replace an encoder or add an encoder to be recognized by a decoder which 
has a learning mode function, selectable by the user. The learning mode function can be 
selected by activating it on the decoder. This can be accomplished by using a normal encoder 
and programming the output function to set the decoder in learning mode. This is also known as 
a master encoder or token. The use of sucli a master encoder allows for a higher level of 
security to be achieved. The master token may also be used in conjunction with input switches. 

hi a different embodiment of the invention, it is possible for an encoder to encode an 
external input value. This input value replaces the value to be encoded internally by the 
encoder. A bidirectional communication arrangement is used in this case. This procedure can 
be used to identify the originality of the encoder, known as identification friend or foe (IFF), for 
access control and authentication purposes. The encoder accepts a challenge value as an input 
from a terminal that forms part of an access control system. This input value is encoded by the 
encoder usirig the encoding function and key to form an encoded value. The encoded value is 
then transferred to the decoder that is part of an access control terminal. If a legitimate encoder 
is used, tlie encoded value will correspond with a decoded value calculated by the decoder and 
the decoder will enable an external ftmction to operate. If it is not a legitimate encoder, the 
decoded value will not correspond with the value generated by the decoder, preventing the 
required response by the decoder. 

The encoder can be used in a token or a transmitter type device in an access control 
system. A transmitter would generally, on activation, transfer information from the encoder 
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output to a receiver system via a transfer medium such as radio (rf), infra red (ir) or microwave. 
A token can also designate a transmitter device, but more generally includes a device in which 
information transfer is done by means of electi'ical contacts and conductors. In these physical 
contact tokens (or smart cards), information can be transferred bi-directionally through read and 
write operations. In both cases the invention is directed to the transfer of information regai'ding 
tlie encoding or decoding key without possibly exposing the encoding or decoding key to the 
outside world. 

Once the learning mode of the decoder is selected, the data from the new encoder is 
captured and the serial number is first used. By malcing use of the manufecturer's master key 
and the captured encoder serial number, a new decoder key is derived with tlie key generation 
algoritliin that must form part of the decoder. The newly derived key is used to decode the 
variable (encoded) pail of the previously captured transmission. Once decoded, it is checked to 
verify that the con*ect key was generated and used. 

In a different embodiment, a further transmission can be required to be decoded. This 
double transmission system can then also check the decoded counter information to ensure that 
the generated key is valid. The encoder serial number is stored iji non-volatile memoi7, and 
associated witli it, the derived decoder key, management code, counter and other user 
information, the learning is thus verified before it is accepted as valid, after which the encoder 
can be used to activate the decoder in normal operation. 

In nornial operation, the encoder, when activated through electrical inputs, for example 
by depressing a push button switch, or switches, or by any other suitable command means, 
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encodes the counter, button and management code information with an algoritlmi and a icey. 
The management code information usually consists of infomiation selected from the following 
group: the encoder status, command, identity, technology type, time, mode, integrity and user 
data. It may also include lime information. This time information may be used to transfer the 
time that the encoding event took place or to indicate valid periods or expiry dates lo the 
decoder system. The user key is associated with the serial number that forms part of the 
information that is stored in non-volatile memoiy. The unencoded serial number and the 
encoded information are transfened by external data transferring means. The data transfer can 
be a transmission by an encoder, or the encoder can be activated electrically in a specific 

application to transfer the data. 

The decoder, on receipt of the transmission, detects the unencoded serial number and 
encoded part. It compares the serial number with the serial numbers of the learned encoders 
stored in its memory. If no comparison is found, ihc liiinsmi.ssion is rejected. If a matching 
value is found, the decoder key stored in memory associated with the matching serial number is 
used lo decode the encoded information with a decoding algorithm. The integrity oi" the 
transmission is checked to verify thai the signal was received and decoded correctly. If Ihis \s 
valid, die counter is checked. If valid, the decoder counter information is updated and the 
output fiinction control is activated. If the counter is not valid, the transmission is rejected. 

The advantages of the security system are that the transmission.s always differ without 
intervention from tlie user and that tlie learning process is conducted in a secure fashion. The 
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5 learning decoder must be accessible and available and information regarding the manufacturer's 
master key must be available in the decoder. 

In a different embodiment, an even more secure learning process is implemented. Using 
an algoritlim and a manufacturer's master key together with a unique key generation seed 
chosen for each encoder, an encoder key is generated. The key generation seed and user key arc 

10 programmed into every encoder along with the encoder serial number and management code 
information. The key generation algoritlim and manufacturer's master key need not preside in 
any encoder. No matlieniatical link need or should exist between encoder serial numbers and 
key generation seeds. When learning a decoder with a new encoder, the encoder is put into 
learning mode and the key generation seed and serial number are transferred to the decoder. 

15 The decoder generates a key for tins encoder, using the manufacturer's master key, key 
generation seed and key generation algoritlim. As the key generation seed is only transmitted 
during the learning process, unauthorized access, under normal operation, is not possible. 

A verification process is initialized to verify that the correct key has been generated and 
that other encoder information has been stored. On complelion, the encoder is now a valid 

20 encoder. This verification process also ensures that transmitted with rogue encoders or 
transmitters from other manufacturers that do not have the correct manufacturer's master key 
cannot be learned. 

The use of a key generator seed protects the security of the system in the event of 
unautliorized scamiing for the serial number of an encoder. With tlie known serial number, it is 
25 vei7 unlikely, but possible, that an encoder can be forged if access is gained to the 
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5 manufacturer's equipment and the manufacturer's master key. If a key generator seed is used, 
however, the key that is stored in the decoder cannot be generated without having access to the 
owner's transmitter or token as welL 

After the learning operation has been successfully executed and the decoder has returned 
to the normal operating mode, the encoder can be used to activate the decoder in the normal 

10 way. This means the serial number will again be compared against learned systems. Special 
baud rate compensation circuitry can be used during the reception process to allow reliable code 
reception. The stored key associated with the encoder serial number is used to decode the 
transmission. The integrity of the received and decoded transmission is checked for validity by 
comparing the management code infomiation received and decoded from the encoder with the 

15 stored information. A similar process is carried out on the associated counter information. If 
successful, the counter information is updated and the predetermined output signal is selected, 
resulting in the correct external function being activated. 

To prevent an intruder from grabbing key information and compromising a security 
system, the key infomiation should never be transmitted. Code hopping makes it impossible for 

20 an intruder to gain unauthorized access to tlie decoder or the learning capability of tlie decoder 
by using code grabbing or generation, or by initializing an unauthorized code liopping encoder. 

The described system makes use of stored keys in the decoder to decode incoming 
transmissions. An alternative arrangement for a learning system is to store only the key 
generation seed, instead of the full key, in the decoder^s key location. During decoding 

25 operations, the coirect key . is generated from a selection of the associated seed, serial number 
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5 and manufaclurer's master key. The advantage is that less nonvolatile storage space is required, 
as the key generation seed may require less storage space than the key. Tlie correct key is 
generated in RAM whenever needed. Since several encoders can be learned to a single decoder 
and tlie RAM can be used over and over, this implementation can be economical. 

This invention can be used in different configurations to enable a manufacturer to utilize 

,0 its principles, for example, in a vehicle security system, door or gate remote control security 
system or in a system to control personnel access to a security area. Different kinds of 
transmission media can also be used, for instance radio, infra red or a physical wire connection. 

The invention is further described by way of example with reference to the 
15 accompanying drawings in which: 

Figure 1 is a simplified representation in block diagram form of an encoder and data 
transfer interface, and a decoder and data transler interface in an access control system 
according to the invention; 

Figure 2 is a block diagram, in greater detail, of the encoder of Figure I ; 
20 Figure 3 is a block diagram, in greater detail of the decoder of Figure 1 ; 

Figures 4a and 4b are rtow charts of the opemtion of a learning algorithm embodied in 

the system of the invention; and 

Figures 5A and 5B aie diagrams of the storage tbrmat of sets of parameters used in the 

encoder and the decoder of tlie invention. 
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The invention is described hereinafter firstly in a general sense, with reference to 
Figure 1 , in order to illustrate the principles of the invention and thereafter, with reference to 
Figiu-es 2 to 5B, in a more detailed manner which is related to a practical embodiment of the 
invention. 

Figure 1 is a simplified block diagram of a transmitter comprising an encoder 10 and a 
data transfer interface 1 1, and a receiver comprising a decoder 12 and a data transfer interface 
13 used in a code hopping remote control system. Sophisticated functions and multiple 
encoder/decoder combinations have been omitted only for the sake of clarity. 

The invention is primarily concerned with the implementation of learning in a code 
hopping system. Learning has been implemented in standard fixed code systems, but code 
hopping systems present a unique challenge. Information encoded by the encoder cannot be 
decoded unless one has access to a user key and the encoded information can consequently not 
be used to transmit the key to the decoder. The invention is directed to overcoming this 
problem. 

The encoder includes a button encoder 14, a counter/storage and error correction 16, 
management code storage 17, a non-hnear encoder 18 having an encoding algorithm, storage 20 
for a key generation seed, storage 22 for a user key, storage 24 for a serial number associated 
with the encoder, and a pulse width modulated code generator 26. 

The decoder 12 consists of a controller 31, a format detector 32, a decoder 34 having a 
decoding algoritlim, an integrity checking part 35, a counter value (synchronization) checking 
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unit 36, an output management function 38, counter/storage 40 for a manufacturer's master Icey, 
a key generating unit 42, storage 43 for a management code, storage 44 for a decoder key, and 
storage and error correction 46 for counter information. 

The button encoder 14 is responsive to a plurality of buttons 48 which are manually 
actuable. When a button is actuated tlie encoder 10, as a whole, is activated. The encoder may 
fiuiction in any one of a plurality of modes, as will become apparent from llie following 
description, with the encoder operating mode being determined by the button or combination of 
buttons which are actuated. The encoder functions are controlled by a controller 49. 

The controller part 49 of the encoder controls the encoder operation. The control part 49 
is connected to each part of the encoder and senses the operational state of each pari and 
provides operational control signals to each part to control the operation and functioning of tlie 
encoder as a whole. Encoder conunands are received from the external buttons and used to 
initiate operational control signals to the rest of the encoder. Control signals can consist of 
encoder mode clianges, selection of transmission information and activation of all the different 
parts as necessary. 

The controller 31 of the decoder controls the decoder in a similar fashion as the encoder 
control part 49 controls the encoder. The control part 3 1 is connected to each decoder part. It 
senses the operational state of each part of tlie decoder and provides operational control signals 
to each part to control the operation and functioning of the decoder as a whole from the decoder 
commands tliat are received from the format detector and mode select input signals. Control 
signals can consist of decoder mode changes, selection of key generation, storage of 
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information, such as keys and serial numbers, integrity checking, syncluonization and counter 
value storage, and output signals. 

The controller 49 may function in either of two modes, namely a learning mode or a 
normal operating encoding mode. Each mode may be selected, as has been indicated, by an 
appropriate choice of the buttons 48, or ift any other suitable way specific to tlie application 
arrangement of the encoder. Once a command has been entered by the button encoding part 14, 
control signals are issued by the control part 49. In the normal operating mode, control signals 
aie issued to operate the counter/storage and error correction part 16, management code storage 
17, non-linear encoder 19, key storage 22, serial number storage 24 and PWM code generator 
26 to select and activate the appropriate output of each specific part. This ensures that the 
encoder will function as described more specifically below. 

If Uie encoder is used in learning mode, the control part 49 issues control signals to the 
seed storage 20. serial number storage 24 and PWM code generator 26 to select and activate the 
appropriate output of each specific part. This ensures that the encoder will function as described 

more specifically below. 

• The controller 3 1 of tlie decoder may function in either of two modes, namely a learning 
mode and a nonnal operating encoding mode. The mode may be selected by appropriate 
internal or external circuitry. Internal circuitry can be activated by the normal detecting and 
decoding operation as described below, to put the decoder in a learning mode. External 
circuitry, such as a push button 1 10 or other switching means, can be used as well. Preferably, 
according to one embodiment, it has been found that it is more convenient and less expensive to 
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include a decoder learning mode activation means which is physically remote or detached from 
tlie encoder and Uie decoder. For example, according to one embodiment, wherein the 
encoder/decoder system of the present invention is utilized in a garage door opening system, the 
decoder/receiver learning mode activation means is preferably, instead of physically located on 
the receiver (or the transmitter/encoder), located on the wall of the gaiage in electrical 
communication with the receiver/decoder. Preferably, the learning mode aclivalion means is 
part of the wall console switch which is also utilized to open aiid close tlie garage door when not 
utilizing the ti-ansmitter/encoder to do the same. Preferably, the wall console switch is 
configured such that upon activation of the switch, e.g. by depressing a button for an extended 
period of time (e.g. 5 seconds) sets the receiver/decoder into the learning mode. Preferably, 
when tlie wall console switch or button is only activated or depressed for a short period of time, 
the garage door opens and closes, respectively. 

In normal operation mode, once the decoder has detected a received signal using the 
forniat detector 32, the controller 31 decides on the control signals to operate the decoder. 
Control signals are issued to the key generation algorithm/control 42, key storage 44, decoder 
34, management storage 43, integrity checking 35, counter/storage and error correction 46, 
counter value checking 36 and output management 38 to select and activate the appropriate 
output of each specific part. This ensures that the encoder will function as described more 
specifically below. 

If tlie decoder is used in learning mode, the controller 3 1 issues commands to the key 
generation algorithm/control 42, key storage 44, decoder 34, management storage 43. integrity 
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checking 35, counter/storage aiid error con'ection 46, output management 38 and learning 
control 100. This ensures that the decoder will store the appropriate information and function as 
described more specifically below. 

In tlie noraial operating mode the counter/storage and error correction 1 6 is activated 
each time the encoder 10 is used. Its count is tlierefore indicative of the number of times the 
encoder is used. The counter value is stored in non-volatile memoiy. The memory only 
operates when power is supplied to the encoder. If the counter value is changed and the power 
discomiected at the same time, it can cause spurious values to be stored. For this reason, an 
error connection function is included in the counter/storage and enror correction 16. The counter 
information is encoded in the non-linear encoder 1 8 using the user key in the storage 22. The 
output of the encoder 18 thus comprises variable information which is combined in the 
generator 26 with the serial number from the storage 24. The serial number, as has been noted, 
is associated with the encoder. The output of the generator 26 is applied to the data transfer 
interface 11 and transmitted to the data transfer interface 13 and decoder 12. The serial number 
can also form part of a unit number uniquely to identify an encoder unit. 

It is to be noted that the encoder and tlie decoder may be directly connected, for example 
by means of a wire, or the encoder and decoder may be remote from one another and the 
transmission of information may be done by radio signal, optically, at an inlra-red frequency or 
in any other suitable way. 

The signal which is received by the decoder 12 using the data transfer interface 13 is 
converted to a logic signal which, in turn, is converted by the format detector 32, to a number 
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5 which is applied to the decoder 34. The detector may be a pulse width modulation code 
detector. The decoding algorithm of decoder 34 decodes the variable portion of the number 
yielding counter and management code information, the integrity of which is checked by the 
part 35 using management code information in the storage 45, to verify the validity of the 
decoding operation. If it is valid, the unit 36 compares the decoded counter informatioji with 

10 counter information held in the storage 46 to detennine that the decoded number is valid and 
has not been used before. If the reception is valid then the relevant outputs are activated by the 
output management function 38. 

In order to implement leaining, the user places the decoder 12 in a learning mode. 
Preferably, according to one embodiment, this is accomplished by activating the learning mode 

15 activation means which is physically detached or remote from the decoder. The encoder 10 is 
also effectively placed in a learning mode by activation of the appropriate buttons 48. In this 
case, the key generation seed held in the storage 20 is applied together with the serial number in 
the storage 24 to the generator 26. It is to be noted that the key generation seed is only used 
during the learning operation. The whole operation of the decoder is controlled by the 

20 controller 31. 

The data transfer interface 1 1 thus transmits information on the key generation seed and 
the serial number to the decoder 12. The data transfer interface 13 receives this information 
which is then detected by the detector 32 and passed to the key generation unit 42. This unit 
calculates a decoder key based on the incoming key generation seed and the maiuifacturer's 
25 master key which is held in the storage 40. The newly generated decoder key is stored in the 
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location 44 and can be used for any future decoding operations, acting on tlie decoding 
algorithm of decoder 34. 

The key generation algorithm that is used in key generation unit 42 during the secure 
learning operation is usually a non-linear algorithm. This algoritlim accepts as input the 
manufacturer's master key 40 (not known) and key generation information. The key generation 
inforaiation can consist of the encoder serial number 24 or tlie seed 20 or both. This 
information is transferred from the encoder in a learning operation to the decoder. 

The decoder 12 uses the key generation algorithm to generate a key 44 that is used to 
decode a normal code hopping transmission. The security of this mechanism pertains to the fact 
tliat the relationship between tlie transmitted seed and the dfecoding key is not known, rendering 
any kind of interception of the transmission useless. The non-linear key generation function 
also makes it impossible to establish any relationship between the key and the key generation 
infonnation, making it impossible for a possible imposter to copy an illegitimate encoder. The 
key 22, serial number 24 and randomly generated seed 20 of an encoder 10 are loaded during 
the manufacturing process. The manufacturer generates the key using the seed, serial number, 
manufacturers master key and key generation algoriUim. The key generation algoritlun is not 
made know publicly. Because the seed is a random number, the possibility of manufacturing 
two encoders with the same keys are very slim. Considermg the fact that the serial number is 
also used in this process, it is highly improbable. 

The verification of the learning process is effected as follows. The user presses the 
appropriate button 48 for normal operation of the encoder 10, thereby causing tlie transmission 
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5 of the variable code which is produced by the non-linear encoder 1 8, and of the serial number 
held in the storage 24. The newly generated decoder key in the storage 44 is used to decode the 
incoming code in the decoding algoritlim of decoder 34. The management code information 
which is thereby produced, is used to verify the validity of the decoding operation by comparing 
• it to the management code in the storage 43. The incoming counter information is stored in tlie 

10 relevant storage location 46. An error correction fiinction is included in unit 46 to ensure tliat if 
spurious data is stored during a power failure, the correct data can be recovered as soon as 
power is restored to the decoder. 

The user then activates the encoder 1 0 again. Once more the resulting variable code and 
the serial number ai-e received by the data transfer interface 13. The variable code is decoded by 

15 the decoding algorithm of decoder 34, using the newly generated decoder key. The counter 
information which results from this transmission is checked against the counter infonnation 
held in the storage location 46. If the comparison indicates that the two variable code 
transmissions were successive then it is assumed that the learning process has been valid and the 
decoder is taken out of the learning mode. The system may now be used for normal operation. 

20 A special relationship exists between the key generation seed in the storage 20 and the 

user key held in the storage 22. This relationship is dependent on the manufacturer's master key 
■ held in the storage 40. The manufacturer's master key is however not progranmied into the 
encoder but, instead, is used in a production line programming unit which programs 
corresponding key generation seeds and user keys into respective encoders. The manufacturei-'s 

25 master key is, on the other hand, programmed into each decoder and is used during learning, in 
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the maimer described, to calculate tlie correct decoder key, which is tlien held in the storage 
location 44, from the received key generation seed. 

In a variation of tlie learning process tlie serial number which is held in the storage 24 is 
used by the key generation unit 42 to generate tlie decoder key. In this case there is no need for 
the encoder to have the capability of transferring the key generation seed. Fiulher, a special 
relationship exists between the serial number and the user key, rather than between the key 
generation seed and the user key. 

The serial number is present in each transmission. Thus the encoder from which a 
transmission originates can be identified even though an outsider cannot gain access to Uie 
information contained in the transmission. The serial number can be used to identify several 
encoders in a single system making it possible to accommodate several distinct encoders in a 
single decoder system. 

The following description, based on Figures 2 and 5 of the accompanying drawings, is 
made witli reference to a practical form of the control system of tlie invention which embodies 
tlie general prmciples which have been described in connection with Figure 1. Where 
applicable similar reference numerals to those employed in Figure 1 are used in Figures 2 to 5 to 
indicate like components. 

• Figure 2 depicts an implementation of a code hopping remote control transmitter 
comprising an encoder 10, buttons 48, a controller 49, a power supply 50 and a data transfer 
interface 11, which may all be housed in a protective housing, which is fitted with a key ring to 
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enable the user to transport the transmitter conveniently. The buttons 48 may be push button 
switches, for activation by remote control of the various functions of the security system, and 
possibly for the supply of power, from the power supply 50, which may be a battery, to the 
entire transmitter. 

All the elements shown in the block diagram, apart form the power supply 50, the button 
switches 48 and the data transfer interface 11 can be implemented in a single integrated circuit. 
An application specific integrated circuit is the prefened implementation in order to make 
reverse engineering as difficult as possible. Reverse engineering poses a security risk insecurity 
systems, as full access to algorithms and stored information is provided by this process. 

The encoder 10 includes a means 14 (button encoder) for encoding information 
regarding the buttons 48 which are pressed and outputs encoded infbrmation 52 which is used 
for controlling tlie operation of Uie encoder using the controller 49 as well as other parts, and 
which may be encoded as a "function request" lo determine the functions lo be activated by the 
decoder 12. The controlling functions include selecting the mode of operation of the serial code 
generator 26, and selecting tlie virtual encoder to be emulated. (The meaning ol" the phrase 
"virtual encoder" will become apparent from the following description.) A function request can 
activate one of several outputs on the decoder. A typical application would be in a vehicle 
security system, where different decoder outputs could be used lo disarm an immobilizer, arm 
an alarm, disarm tlie alarni and operate electric windows of the vehicle. 

As an example of button encoder 14, if an amount of buttons b are used to activate the 
encoder, the button encoding flmction encodes the value b lo distinguishable values thai are 
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5 passed to the internal circuitry of the encoder. Pressing two buttons at the same time can for 
instance initiate the generation by tiie button encoder 1 5 of a distinguishable value that activates 
the encoder to transfer encoder related information. If any one of the same tow buttons are used 
separately, a totally different value is generated by the button encoding 14, resulting in the 
selection and transfer of different information. This means that with an ajuount of only b 

10 buttons, 2 to tlie power of b different functions can be distinguished and selected. The button 
encoding 1 5 can also be used to set the encoder in learning mode by programming the encoding 
function to output a predetermined value. This value can be presented if any one or 
combination of buttons are pressed. 

A section of non-volatile memory 54 is used to store a plurality of parameter sets 56A . , 

15 . 56N. Each parameter set consists of a fixed key generation seed 60 which corresponds to the 
seed held in the storage 20 of Figure 1, a serial number 62 which corresponds to the serial 
number held in the storage 24 of Figure K an encoding or user 20 key 64 which corresponds to 
the user key held in the storage location 22, counter and error corrcclion information 66 which 
includes the counter information held in the counter/storage and error correction 16, and a 

20 management code 68 corresponding to that held in the storage 1 7. 

As has been noted provision is made for the storage of several parameter sets 56. Jiacli 
parameter set is associated witli what is termed herein a "virtual encoder" for the encoder can act 
as any one of different virtual encoders, depending on which buttons 48 are pressed. 
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The counter/storage and error correction 16 is updated each time the encoder is actuated. 
When several parameter sets are used, however, only the counter information in a particular 
parameter set is updated each time the corresponding virtual encoder is used. 

A specific encoder can either use a single stored parameter se 56 along with various 
ftmction requests, or different parameter sets with similar or different function requests. 
Typically, different parameter sets will be used if several different decoders are to be accessed. 
Several functions 15 might be accessible on each of these decoders. A single encoder might 
then be configured to access all the decoders, using different parameter sets, and be able to 
combine different function requests with each of the parameter sets. 

The serial niunber 62 is unique to a particular virtual encoder, and is encoded with each 
emission from tiiat particular virtual encoder. The encoding or user key 64 is a number, unique 
to a specific virtual encoder, that is used to encode the transmission in such a way that the 
original encoded information cannot be retrieved by an outsider. The managemenl code 68 
consists of information about the status of the particulai- virtual encoder, and may include 
sections witli predefined values for checking the integrity of decoding operations in tiic decoder. 
Tlie counter and eiTor correction information 66 is the count of a 16 bit counter, used lor 
keeping track of the syncluonization between the encoder and the decoder and error con ecled if 
a spurious enror occurs during a storage operation. The counter is altered each time the virtual 
encoder is operated. The key generation seed 60 is a number which, as has been noted with 
reference to Figure 1, bears a specific relationship to the encoding key 64. While the key is read 
protected, tlie seed 60 is not necessarily inaccessible. However, the relationship between the 
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two is sufficiently obscure tliat an outsider will not be able to infer the icey fioni the value of the 
seed. 

The non-volatile memory 54 is read-protected to prevent scrutiny of the encoding keys 
64 from outside. Access to the keys, or to the serial number 62, the seed 60 and llie 
manufacturer's master key in the storage 40, could enable an outsider to program a similar 
encoder with an identical key and gain access to the system. 

The encoder includes a non-linear encoder 18 which uses a user key 64 to encode an 
input string. The key length should be sufficient to ensure reasonable immunity against 
analytical attacks, considering the state of the art in computer technology. A key length of 64 
bits is considered adequate for security and access control systems. The use of longer keys has 
adverse cost implications, while shorter keys provide reduced security levels. The lengtli of Uie 
output string 70 of the non-linear encoding algorithm determines the number of bits encoded by 
the encoder. A 32 bit output string provides a good balance between security and response time 
at typical remote control transmission rates. The input siring to the encoding algorithm is 32 
bits and contains function information 52 from the button encoder 14 (4 bits), the counlei- 
information 66 (16 bits) and the management code 68 (12 bits), specific to the encoder being 
activated. The management code can contain system status information, including low battery 
voltage indicators and mode selections. 

A serial code generator 26 is used to assemble tiie code to be emitted. The code consists 
of either a combination of the 32 bit encoded string 70 produced by Uie non-lineai- encoder 18 
and the serial number 62 of the encoder, or of a fixed key generation seed 60 and the serial 
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5 number 62. The code generator 26 also implements tlie modulation scheme required for 
transmission by the data transfer interface 1 1 which in tliis case is pulse width modulation 
(PWM). 

The output 72 of the serial code generator 26 is emitted by the interface 1 1 using 
electromagnetic or oUier means. The data tiansfer interface 28 can be replaced by a direct 
1 0 connection in the case where remote operation is not required. 

The encoder includes a status monitor 74 which can alter parts, for example status 
information, of the management code 68 in a particular memory block, depending on selected 
options and conditions existing in the encoder. These changes can be detected in the decoder to 
provide feedback on imminent encoder problems, for example a flat battery. The status aspects 
1 5 which are monitored are selected via a unit 76. 

The options 76 aie programmed in Uie encoder in non-volatile memory to select 
different encoder status by status monitor 74. A specific predetermined option may indicate Ibr 
instance battery low voltage. The sam value is programmed in the decoder to sense the battery 
voltage low indication in a transmission for indication to the user. Tlie programmed options 76 
20 are activated, and therefore the selected status monitor 74, when an encoder is activated. The 
predetermined value is substituted in part of the management code 68 before encoding and 
transferring the information. The options, when selected and transfeired, are sensed by the 
decoder after decoding so that the programmed action can be taken. 

Figure 3 depicts an implementation of a learning code hopping access control decoder 

25 12. 
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5 A data transfer interface 13 converts the electromagnetic or other signals used for 

transmission of the signal from the data transfer interface 1 1 into a baseband logic signal 78 still 
modulated according to the modulation scheme implemented by the serial code generalor 26. 

The decoder includes a detector 32 which has means for compensating for differences in 
transmission length due to timing differences between the encoder and the decoder. 

10 The detector 32 extracts a 32 bit variable number 80 from the signal 78 and applies it to 

a decoding algoritlini 34 which decodes the variable number, using a 64 bil decoder key 82 
stored in a non-volatile memory 84. If a valid decoding process has taken place the resultant 32 
bit code 86 contains the infonnation inserted into the non-linear encoding algorithm of encoder 
1 8 in the encoder 1 0 before encoding. 

15 The decoder includes an integrity checking unit 35 to verify the validity of the decoding 

process. For a valid decoding there is a predetermined relationship between a stored 
management code 90, which corresponds to thai held in tlic storage 43 of Figure I, and the 
corresponding portion of the decoded 32 bit word 86. 

The decoder key 82 corresponds to the decoder key lield in the storage location 44 of the 

20 decoder 1 2 of Figure 1 , 

A synchronization checking unit 36 verifies the validity of a transmission by comparing 
incoming counter information 92, produced by the integrity checking unit 35, witli stored 
counter information 94 for the relevant encoder. The counter information 94 corresponds to the 
information held in the storage location 46 of the decoder 12 of Figure 1 and includes an error 
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correction liinction to ensure that the value of tlie counter is corrected wlien a spurious error is 
stored during a power failure. 

An output management unit 38 manages tlie activation of or communication with oUier 
devices in tlie system. The unit 38 provides an indication of which of several functions is or are 
desired, whether the encoder 10 has ceased encoding and whether any special options are being 
requested. An indication of tlie identity of Uie encoder, from which the received signal 
originated, may also be made available. The unit 38 also makes use of storage space in the non- 
volatile memory 84 to manage options, determined by an option control unit 96, which may 
influence the format in which output signals 98, which are produced by the unit, are presented, 
or may enable or disable specific system features. 

A learning control unit 100 manages the learning process by passing appropriate 
instructions to the detector 32, the decoding algorithm of decoder 34, tlie integrity checking unit 
35, the synchronization checking unit 36 and a key address management unit 1 02. The unit 1 00 
can be placed into the learning mode from outside the decoder, or special output combinations 
can be used to place Uie decoder in the learning mode, by passing the relevant signal from the 
management control unit 38 to the leai-ning control unit. 100. Most preferred, is a system 
wherein the decoder is set into tlie learning mode by a learning mode activation means, e.g., a 
switch or circuit, which is physically remote from or detached from the decoder. Preferably, the 
learning mode activation means is physically remote or detached from ihc encoder also. 
Typically a single memory block is resei-ved for this purpose. 'The decoder, including the 
learning control 100, is controlled by a controller 3 1 . 
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A parameter set 56 of a designated encoder, referred to as a master encoder, is stored in 
this reserved memory block. Wlien the master encoder is activated tlie output function control 
unit 38 sends a control signal to the unit 100 thereby placing the decoder 12 in Ihe learning 
mode. 

The non-volatile memory 84 makes provision for Uie storage of a plurality of parameter 
sets 102A . . . 102N which correspond to the parameter sets 56A . . . 56N in the encoder. Each 
parameter set includes a serial number 104 which conesponds to the serial number 62 of tlie 
coiresponding encoder, and the associated decoder key 82, management code 90 and counter 
information 94. A manufacturer's master key 106, conesponding to the infonnalion held in the 
storage location 40 of Figure 1, is also stored in tlie memory 84 for use during learning 
operations. 

The key address management unit 102 manages the passage of information to and from 
the non-volatile memory 84. The key address management unit can be implemented in 
hai-dware or in softwai-e or in a combination thereof This unit selects the memory bank to be 
used with each memoiy bank being capable of storing a single parameter set. A pointer is also 
maintained in a memoiy segment 108 indicating the next memoiy bank to be used for learning 
operations. 

During learning operations a key generation unit 42 generates a decoding key 82 for Uie 
new encoder and transfers U to the relevant memory location for the respective parameter set 
102. A non-linear encoded algoridim of a similar level of complexity to the code hopping 
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algorithm is used to ensure tliat the relationship between tlie key generation seed and the 
encoding or decoding key 82 is as obscure as possible. 

Figure 5 contains a representation of an encoder parameter set 56 and a decoder 
parameter set 1 02 and includes a summary of the contents of each parameter set. 

When the user presses a button 48 to activate the encoder 10, the button encoding unit 
14 determines which button or combination of buttons has been pressed and generates the 4 bit 
function code 52 togetlier with a combination of control signals. The control signals determine 
from which memory block the relevant parameter set will be taken and whether tlie transmission 
should consist of a hopping code or a fixed code. 

The buttons 48 may be replaced by a system tliat can command the encoder electrically. 
The command can be generated, for instance, by a computer or other equipment, using a special 
command interface. The power of the encoder may also be supplied by the command interface. 

In another application the encoder and decoder combination can be used for 
authentication and access control purposes. The encoder can be housed in a loken or smart card 
that a person can carry and use to access, for instance, a security area. The communication 
takes place on an electrical interface. In this case bidirectional communication is used to 
communicate information between an encoder and a decoder. The serial number 62 of the 
encoder is transferred to the decoder to establish the key 82 to be used in the decoding process. 
A value is presented as an input value to the encoder by the decoder, known as a challenge. The 
encoder encodes the challenge value and returns the encoded value to the decoder. The decoder 
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now decodes the encoded value and compares it with the cliallenge value to establish tlie 
authenticity of the encoder and activate an output accordingly. This teclinique is generally 
known as IFF (identification friend or foe). In this application, Uie seed 60 of the encoder can 
be transferred to a decoder in learning mode. The key 82 can be generated and stored in the 
decoder as described in this description. 

The ability to employ more than one parameter set for an encoder enables the encoder lo 
address more than one decoder without interference, even if a single operating frequency is 
shared. The encoder appears to be a chosen one of several independent encoders, each of which 
is capable of independent operation, hence the pliiase "virtual encoder." Clearly tlie encoders 
are not capable of simultaneous operation. For hopping code operation the non-linear encoding 
algorithm of encoder 18 uses the respective encoding key 64 to encode the counter information 
66 and the management code 68 together with the 4 bit function code 52. The 32 bit output 
code 70 is presented to the serial code generator 26. The counter information 66 is altered eucli 
dme a transmission takes place for the respective virtual encoder. The serial code generator 26 
appends the relevant encoder's serial number 62 lo the encoded part tiiereby forming a single 
output code 72 which is presented to the input of the data transfer interface 1 1 in PWM serial 

form (in this example). 

For fixed code operation the key generation seed 60 is presented directly to Die serial 
code generator 26 which presents the code, togeUier witli the serial number 62, in PWM serial 
form to the data transfer interface 1 1 . 



wo 98/55717 PCT/US98/n365 

44 

In botli modes of operation the data transfer interface 1 1 transmits tlie information from 
the serial code generator using electromagnetic or other means. 

Signals received by the data transfer interface 13 are converted to the logic signal 78, 
still in PWM fomi. The format detector 32 monitors the logic signal 78 and when the initial 
portion of an apparently valid signal is observed the detector calibrates itself on the incoming 
signal to compensate for deviations from nominal timing. The remainder of the incoming signal 
is received and converted to a number which, in this example, is a 64 bit binary number. 

The first 32 bits of tlie detector output, i.e., the hopping code, are designated 80 and a 
represented to the decoding algoritlmi of decoder 34. The last 32 bits, i.e. the serial number, are 
presented to the key address management unit 102. This unit detennines the memory block to 
be used by comparing the received serial number with the stored serial numbers 104 until a 
match is found. The decoding algoritlim 34 uses the decoder key 82 from the correct memory 
block, i.e., the respective parameter set, to decode the hoping code 80. A 32 bit output 86 is 
presented to the integrity checking unit 35. This 32 bit string comprises the original 4 bit 
function code 52, 16 bits of counter information 66 and tlie 12 bit management code 68. The 
integrity checking unit 35 checks for a predetermined relationship between the decoded 
management code 68, in the decoded word 86 and Uie stored version 90. If a defmed 
relationship exists the decoding is held to have been valid. 
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The decoded counter 66 is compared with the stored counter 94 held in tlie respective 
parameter set. If the synclironization proves that the transmission is valid the stored value 94 is 
updated and tlie output control function unit 38 is advised accordingly. 

The unit 38 outputs the decoded function information 98. The unit may make the 
information available in serial fomat for use by an external conUoller or may have discrete 
outputs to indicate any of a number of different conditions. The identity of the encoder being 
decoded that can be included as part of the management code, a valid signal indicator, and a 
second function mode, are all examples of useful output information 98. 

Learning operation takes place when the user wishes to add a new encoder to the 
system. The learning control unit 100 then receives an input signal prompting it to enter the 
learning mode, for example, by activating switch 110. Preferably, as stated above, switch 1 10 is 
physically detached or remote IVom the decoder and the encoder. The signal may be in llic ibrm 
of an instruction from outside, e.g., generated by a switch or may emanate from the oulpul 
function control unit 48 after reception of a valid code, as has been described hereinbefore. 

The user now activates the encoder 10 as a fixed code encoder using a specific learning 
hardware configuration. The key generation seed 60 is substituted for the variable code portion 
of die transmission and the serial number 62 is retained as the remainder of the encoded aide. 

The resultant signal, emitted by the data transfer interface 1 1, is received by the data 
transfer interface 13. The format detector 32 passes the entire received transmission 78 to the 
key address management unit 102. Thus the signal presented to the unit 102 is a 64 bil string. 
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Tlie unit 102 deviates from its normal functioning in the learning mode and generates an 
decoding key 82 from the serial number, the key generation seed and the manufacturer's master 
key 106. This key is written into one of the memory blocks depending on the value of a pointer 
used specifically for this puipose and held in tlie memory block 108. The received serial 
number 104 is stored in the relevant memory block associated with die respective parameter set. 
The next learning pointer can be managed according lo a variety of different schemes. Options 
include, inter alia, cycling the pointer tlirough the available memory locations and allowing the 
user to set the pointer from outside. 

From a security point of view a key generation algoritlim, of the kind carried out by the 
unit 42, should only be implemented in an application .specific integrated circuit as a generic 
logic device, such as a micro processor, is readily reverse engineered, leaving the algorithm 

open to public scrutiny. 

The user now activates the encoder twice in the code hopping mode. Duving the fust 
transmission the 64 bit code is received by the data transfer interface 13 and detected by the 
detector 32. Tlie decoding algorithm of decoder 34 decodes the 32 bit variable code 80 using 
the newly generated decoder key 82 and stores the decoded management code 90 in the correct 
location. The decoded counter information 94 is also stored in the correct location. 

During the second transmission the received signal is detected by the detector 32 and the 
serial number is passed to the key address management unit 102 where it is compared with the 
newly stored serial number 104. In addition the 32 bit variable code 80 is decoded by the 
decoding algorithm 34. The integrity checking unit 35 checks tlie decoded management code 
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agauist tlie stored version 90 and the synchronization checking unit 36 checks the decoded 
counter information against the stored version 94. If any of these checks is unsuccessful the 
learning operation is rejected. If they are all successful the next learning pointer in the storage 
location 108 is altered to indicate that the next memory block is available for learning. 

Tlie learning process may also include a routine to learn a specific combination of 
outputs for use with a specific encoder. For example, a specific user may require special 
priority in a specific system and this priority can be assigned during such a routine. 

Once the entire learning operation has been successfully concluded the user should 
activate the encoder once more to verify that tlie encoder is operating correctly. 

The system as it has been described makes use of stored keys 82 in the decoder to 
decode incoming transmission. An allemalive arrangement for learning systems is to store only 
tlie key generation seed, instead of the full key, in the location allocated for the key 82. During 
. decoding operations the correct key is generated from the associated key generation seed and 
the manufacturer's master key 106. The advantage is that less non-volatile storage space is 
required as the key generation seed typically requires less storage space than Uie key.' The 
correct key is generated in RAM whenever needed. 

Figures 4a and 4b aie flow charts of the learning algorithm embodied in the decoder. 
Referring to Figure 4a, once the learning mode has been established as described previously, the 
key generation seed (stage 150) and Uie hopping code (stage 152) are received by the decoder. 
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At a stage 154 a relational counter (in key generation unit 42) is initialized, and set to zero. Tlie 
relational counter is used to allow for more than one relationship between the key generation 
seed, the encoder serial number and the key for the encoder, or between the encoder serial 
number and the key for the encoder. 

The relational counter 1 54 is used at a stage 1 56 to compose a modified seed for the key 
generation algoritlim which is a non-linear aigoriUim using at least the manufacturer's master 
key 106 and the key generation seed as an input. After the key is generated (stage 158), tlie 
management code can be decoded and stored (stage 162). The decoding operation integrity is 
checked at stage 164 to decide if the decoding operation is valid. If valid, the flow proceeds to 
stage 170. If it is not valid, it is decided if the operation should can y on or not at stage 166. If 
the operation should cari^ on, the relational counter 154 is incremented (stage 168) to establish 
a new relationsliip that may be valid. 

The learning process terminates at a stage 1 72 if all valid relationship.s belween tlie key 
generation seed and tlie serial number have been used and a valid relationship (stage 166) has 
not been found. 

The probability of atxidentally accepting an invalid encoder during learning is related to 
the number of predefined bits within Ure encoded management code. Since not more than 12 
bits are available in the implementation under discussion the best integrity is in tlie order of I in 
4000. This level is regarded as inadequate for security systems. The integrity can be improved 
either by increasing the length of the known component of the management code or by 
implementing a checking algoritlim based on a second transmission (stage 176 in Figure 4b) 
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from the encoder being learned. Longer code lengths have disadvantages such as higher 
implementation cost and longer response times. Using a second transmission increases the 
certaint>' of the integrity checking by many orders of magnitude without affecting the system 

cost or the response time. 

The second part of the flow chai-t implements this leclmique, as described with reference 
to Figure 4b. If the decoding function is perfomied and found valid (stage 170), a decoded 
counter value is stored (stage 174). At stage 176 a second hopping code is received. This code 
is decoded (stage 178) and the decoded management code verified (stage 180) with the stored 
management code. If the values do not match the learning process is accepted as invalid and 
aborted. Next, the counter value is verified at stage 182 wiUi the stored counter value. If the 
values do not match, the transmission is accepted as an invaUd and illegitimate learn operation, 
and aborted. If the counter values match, a valid learn operation accepted (stage 184). If Uie 
counters to not match, as with normal code hopping system operations, some leeway may be 
allowed in the counter synchronization checking (stage 182) to allow for interim Uansmissions 
that may not have been decoded by the decoder, and can be accepted as il' they malcli and 
accepted as valid. 

At stage 184 it is assumed that a valid learning process has been completed. The next 
learning pointer (reference 108 in Figure 3) is updated at stage 1 86 to point to the next available 
learning position. Output configuration learning associated with a particular encoder can be 
included at stage 188 if required. At stage 190 the learning cycle is completed. 
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Obviously, numerous modifications and variations of tlie present invention aie possible 
in liglit of tlie above teachings. For example, the encoder pari 10 is implemented on an 
application specific integrated circuit (ASIC). Part of the circuit is made up of non-volatile 
memoi7 tliat is used to store the different changing and programmable values, such as the 
parameter sets 56 and options 76. Although this method of implementation is used to ensure the 
security and practical aspects of the system, it can be implemented in software in a computer or 
a microprocessor controller. The same approach is used with the decoder 12. The functions 
and memory parts are implemented on an ASIC, but can also be implemented on a computer or 
microprocessor controller. This implementation may be preferable at the decoder, as the 
decoder may be required to store a large amount of infomiation to allow many users to access 
the system. It is therefore understood that within the scope of tlie appended claims, the 
invention may be practiced otherwise than as specifically described herein. 
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5 



CLAIMS 



1. 



All access control system which includes an encoder a learning mode activation means, 



and a decoder, the encoder including: 



means for storing a serial number; 



means for storing at least one of the following: 



10 



a seed; and 



a first key which is generated using a manufacturer's master key and at 
least one of the following: 
the seed; and 
the serial number; and 

means for transferring a signal which includes key generation informa- 
tion selected at least from: 
the seed; 

the serial number; and 

information derived from applying the first key and an algorithm to an 



20 



input value; 



a decoder learning mode activation means physically remote from the 



encoder and the decoder for setting the decoder in learning mode; and 



the decoder including: 



means for storing a manufacturer's master key; 



25 



means for receiving the transferred signal; and 
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means for generating a second key using at least the key generation- 
information and tlie manufacturer's master key. 

2. A method of operating an access control system which includes an encoder and 
decoder, the method including the steps of: 

storing a serial number; 

storing at least one of the following: 
a seed; and 

a first key which is generated using a manufacturer's master key and at 
least one of the following: 
the seed; and 
the serial number; and 

using tlie encoder to transfer a signal which includes key generation 
infomiation selected at least from: 
the seed; 

the serial number; and 

information derived from applying the first key and an algorithm to an 

input value; and 

storing a manul^cturer's master key in the decoder; 



10 



IS 



20 
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activating a decoder learning mode activation means for setting the 
decoder in learning mode, said means being remote from tlie encoder and the 
decoder; 

receiving the transferred signal by the decoder; and 
generating a second key by the decoder using at least the key generation 
information and the manufacturer's master key. 

3. A method of operating a decoder which includes the steps of: 
storing a manufacturer's master key; 
' setting the decoder in learning mode by activating a decoder learning 
mode activation means physically remote or detached from the decoder; 

receiving a signal which contains key generation information selected at 

least from: 

a seed; 

a serial number; and 

encoded information derived from applying a first key and an algorithm 

to an input value; and 

generating a second key using at least the key generation information 

and the manufacturer's master key. 
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4. An improved rolling code or code hopping system comprising an encoder and a decoder, 
wherein the improvement comprises: 

a decoder learning mode activation means whereby upon activation of said 
means the decoder is set in learning mode, said means being physically remote or de- 
tached from the encoder, and the decoder. 

5. An improved code hopping or roiling code system comprisuig a transmitter and a receiver, 
wherein said improvement comprises: 

a receiver learning mode switch whereby upon activation of said switch the 
receiver is set in the learning mode, said switch being physically detached or remote 
from tlie receiver, and tlie transmitter. 
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